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Status of Claims 




1. Claims 1-35 have been examined. 

Claim Rejections • 35 USC § 101 

2. 35 U.S.C. 101 reads as follows: 

Whoever invents or discovers any new and useful process, machine, manufacture, or composition of 
matter, or any new and useful improvement thereof, may obtain a patent therefor, subject to the 
conditions and requirements of this title. 

3. Claims 18-34 are rejected under 35 U.S.C. 101 because the claimed 
invention is directed to non-statutory subject matter. 

Claims 18 and 34 describe an algorithm. The "usefulness" of such an 
algorithm is not apparent, as the outcome merely results in the storage of a 
number or similar mathematical construct, and was produced without 
transformation of the data by a machine, such as a computer mathematical 
construct without a practical application. Hence the claimed invention does not 
produce useful, concrete and tangible result (State Street Bank & Trust Co. v. 
Signature Financial Group Inc., 149 F.3d 1368, 1373, 47 USPQ2d 1596, 1600 
(Fed. Cir. 1998)). 

Claims 19-33 are also rejected as they depend from claim 18. 
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^___Cjairn s 18-35 are rejected un der 35 U.S.C. 101 because the claimed 
invention is the disclosed invention is inoperative and therefore lacks utility. 

Claims 18, 34 and 35 recite the creation and storage of a hashed 
encryption key. Special functions such as MDx (MD2, MD4, MD5) are one-way 
hash functions (Specification, paragraph 26). One-way functions are "secure" in 
that they operate on a value to produce a "hash", however, a similar or inverse 
operation does not exist such that the value can be reproduced from the hash. 
To one of ordinary skill the hash of a file is used to verify the authenticity of the 
original file by calculating a second hash of the file and comparing. In the 
Applicant's teaching the encryption key is hashed and stored presumably for 
future manipulation (Specification, paragraphs 42 and 43). Therefore, as the 
encryption key cannot be recovered the Applicant's method and apparatus does 
not have any use. 

Claims 1 9-33 are also rejected as they depend from claim 1 8. 




Claim Rejections - 35 USC §112 



5. 



The following is a quotation of the second paragraph of 35 U.S.C. 112: 



The specification shall conclude with one or more claims particularly pointing out and distinctly 
claiming the subject matter which the applicant regards as his invention. 
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-Claim s 18-35 are rejected under 3 5 U.S.C. 112, second paragraph, as 

being indefinite for failing to particularly point out and distinctly claim the subject 
matter which applicant regards as the invention. 

Claims 18, 34 and 35 recite the creation and storage of a hashed 
encryption key. Special functions such as MDx (MD2, MD4, MD5) are one-way 
hash functions (Specification, paragraph 26). One-way functions are "secure" in 
that they operate on a value to produce a "hash", however, a similar or inverse 
operation does not exist such that the value can be reproduced from the hash. 
To one of ordinary skill the hash of a file is used to verify the authenticity of the 
original file by calculating a second hash of the file and comparing. In the 
Applicant's teaching the encryption key is hashed and stored presumably for 
future manipulation (Specification, paragraphs 42 and 43). Therefore, as the 
encryption key cannot be recovered it is not clear, to one of ordinary skill, what 
exactly the Applicant is claiming. 

Claims 24 and 25 are also rejected as they refer to a "tuple"(i.e. a pair) 
with more than two elements. 

Claims 19-33 are also rejected as they depend from claim 18. 
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-Glaims-21,^34jajT415j^citethe limitation "the secret tokens" in lines 2, 14 



and 16, respectively. There is insufficient antecedent basis for this limitation in 
the claim. 



Claim Rejections - 35 USC § 102 



8. The following is a quotation of the appropriate paragraphs of 35 
U.S.C. 102 that form the basis for the rejections under this section made in this 
Office action: 

A person shall be entitled to a patent unless - 

(b) the invention was patented or described in a printed publication in this or a foreign country or in public 
use or on sale in this country, more than one year prior to the date of application for patent in the United 
States. 

9. Claim 1-9 and 17 are rejected under 35 U.S.C. 102(b) as being clearly 
anticipated by Auerbach etal., U.S. Patent No. 5,673,316. 

As per claims 1-9 and 17 Auerbach et al. teach a network system for key 
management comprising: 

• a server (figure 1 ; column 2, lines 11-15) 

• a key management system providing process logic for key 
management system initialization located on the server, secure data 
storage, and an interface for providing a means for inputting data into 
key management system (figure 1; column 2, lines 11-15; column 6, 
lines 50-61 ) 
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— • — adientxomputejLJ^pjjsin g a user interfa ce (GUI or browser) for 

inputting data into the key management system, connected to the 
server (figure 1 ; column 1 , lines 54-60; column 6, lines 50-61 ; column 
8, lines 5-15; column/line 8/45-9/10) 

• key management storage located on a server or on a second server 
connected to the server (figure 1; column 2, lines 10-15) 

• connecting client and server using an encrypted connection (column 8, 
lines 20-25 and 58-62; column 10, lines 35-40) 

Claim Rejections - 35 USC § 103 

1 0. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for 
all obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 102 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 

1 1 . Claims 1 0 are rejected under 35 U.S.C. 1 03(a) as being unpatentable over 
Auerbach et al., U.S. Patent No. 5,673,316. 

As per claims 10, 12-14 Auerbach et al. teach a network key 
management system comprising a memory for storing data with (figure 1 ; column 
2, lines 11-15), a hashing module (using MD5) for hashing a key encrypting key 
and an encryption (or encoding) module, comprising key generation (column 5, 
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-linesJ-8). for encr ypting data (column 5, lines 5-43; column/line 5/54-6/43; 
column 6, lines 15-28). Regarding serialization, Auerbach et al. teach distribution 
over networks such as the internet (column 1 , lines 55-65). More specifically, 
Auerbach et al. disclose compression techniques (column 4, lines 19-25; column 
5, lines 55-62). Therefore, it would have been obvious to one of ordinary skill to 
apply compression algorithms to the cryptographic envelope (figure 5) in order to 
reduce storage (column 4, lines 19-25) and thereby facilitate more efficient 
transmission. 

As per claim 11, Auerbach et al. disclose randomizing data (column 5, 
lines 1-8). 

As per claims 15 and 16, Auerbach et al. teach a key generation tool that 
comprises a symmetric algorithm (column 5, lines 1-8) and a key generation tool 
that comprise asymmetric algorithms, for example for encrypting and decrypting 
data exchanged by client and server (column 7, lines 30-42; column 8, lines 22- 
25 and 58-63; column 9, lines 40-48; column 10, lines 35-40). 

As per claims 18- Auerbach et al. teach: 




entering data and a key encryption key into a key management 



system (abstract) 



combining data into a tuple (e.g. document part and control part) 



(figure 2) 
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jsncrypjing the tuple (encoding a key field of the tuple) with the key 



encryption key to create a token (abstract; figure 2) 
hashing the encryption key (figure 3) 
storing the token in a vector (column/line 3/58-4/2) 
storing the hashed key (figures 2 and 3) 
storing a list of keys (figures 2 and 3) 
randomizing data (column 5, lines 1-8) 
randomizing the list of keys and secret tokes (figure 3) 
generating data to encrypt (abstract; figure 2) 
a tuple with an application, key, value and type field (figure 3) 
key management storage located on a server or on a second 
server connected to the server (figure 1; column 2, lines 10-15) 
• a client computer, comprising a user interface (GUI or browser) for 
inputting data into the key management system, connected to the 
server (figure 1 ; column 1 , lines 54-60; column 6, lines 50-61 ; 
column 8, lines 5-15; column/line 8/45-9/10) 
Regarding serialization (-the flattening of an N-dimensional object in to a one- 
dimensional object or "vector"), Auerbach et al. teach distribution over networks 
such as the internet (column 1 , lines 55-65) (note as the n-dimensional object is 
the cryptographic envelope. More specifically, Auerbach et al. disclose 
compression techniques (column 4, lines 19-25; column 5, lines 55-62). 
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Therefore ^Jiwoul d have been ob vious to one of ordinary skill to apply 
compression algorithms to the cryptographic envelope (figure 5) in order to 
reduce storage (column 4, lines 19-25) and thereby facilitate more efficient 
transmission. Regarding "tagging" the method and system of Auerbach et al. is 
implemented using computer code (column/line 3/59-4/8). More specifically, 
Auerbach et al. teach cryptographic envelopes as executables, subroutines, 
modules or object components hence in order to be manipulated objects have to 
be defined (i.e. tag). Regarding algorithms, teach a key generation tool that 
comprises a symmetric algorithm (column 5, lines 1-8) and a key generation tool 
that comprise asymmetric algorithms, for example for encrypting and decrypting 
data exchanged by client and server (column 7, lines 30-42; column 8, lines 22- 
25 and 58-63; column 9, lines 40-48; column 10, lines 35-40). 



applicant's disclosure: 

• Narasimhalu et al. teach a method and apparatus for 
disseminating encrypted information 

• HDF5 Software Library and Utilities 




Conclusion 



12. 



The prior art made of record and not relied upon is considered pertinent to 
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-13 Aj^Jnguiry concerning this communication or earlier communications from 

the Examiner should be directed to Calvin Loyd Hewitt II whose telephone 
number is (703) 308-8057. The Examiner can normally be reached on Monday- 
Friday from 8:30 AM-5:00 PM. 

If attempts to reach the Examiner by telephone are unsuccessful, the 
Examiner's supervisor, James P. Trammell, can be reached at (703) 305-9768. 
Any response to this action should be mailed to: 
Commissioner of Patents and Trademarks 
c/o Technology Center 2100 
Washington, D.C. 20231 

or faxed to: 

(703) 305-7687 (for formal communications intended for entry and 
after-final communications), 

or: 

(703) 746-5532 (for informal or draft communications, please label 
"PROPOSED" or "DRAFT") 
Hand-delivered responses should be brought to Crystal Park 5, 
2451 Crystal Drive, 7th Floor Receptionist. 

Any inguiry of a general nature or relating to the status of this application 
should be directed to the Group receptionist whose telephone number is (703) 
308-1113. 
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